Common Vulnerabilities and Exposures by NIST

CVE-2014-8538 N/A

2014-10-29 2014-10-29

The Hijab Modern (aka com.Aisyaidea.HijabModern) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

Vendor(s): N/A

Affected OS(s) / software(s): N/A

CVE-2014-8533 N/A

2014-10-29 2014-10-29

McAfee Network Data Loss Prevention (NDLP) before 9.3 allows remote attackers to execute arbitrary code via vectors related to ICMP redirection.

Vendor(s): N/A

Affected OS(s) / software(s): N/A

CVE-2014-8534 N/A

2014-10-29 2014-10-29

Unspecified vulnerability in the login form in McAfee Network Data Loss Prevention (NDLP) before 9.2.2 allows local users to cause a denial of service via a crafted value in the domain field.

Vendor(s): N/A

Affected OS(s) / software(s): N/A

CVE-2014-8535 N/A

2014-10-29 2014-10-29

McAfee Network Data Loss Prevention (NDLP) before 9.2.2 allows local users to bypass intended restriction on unspecified functionality via unknown vectors.

Vendor(s): N/A

Affected OS(s) / software(s): N/A

CVE-2014-8536 N/A

2014-10-29 2014-10-29

McAfee Network Data Loss Prevention (NDLP) before 9.2.2 allows local users to obtain sensitive information by reading unspecified error messages.

Vendor(s): N/A

Affected OS(s) / software(s): N/A

CVE-2014-8537 N/A

2014-10-29 2014-10-29

McAfee Network Data Loss Prevention (NDLP) before 9.2.2 allows local users to obtain sensitive information by reading the logs.

Vendor(s): N/A

Affected OS(s) / software(s): N/A

CVE-2014-8518 N/A

2014-10-29 2014-10-29

The (1) Removable Media or (2) CD and DVD encryption offsite access options (formerly Endpoint Encryption for Removable Media or EERM) in McAfee File and Removable Media Protection (FRP) 4.3.0.x and Endpoint Encryption for Files and Folders (EEFF) 3.2.x through 4.2.x uses weak entropy, which make it easier fo local users to obtain passwords via a brute force attack.

Vendor(s): N/A

Affected OS(s) / software(s): N/A

CVE-2014-8519 N/A

2014-10-29 2014-10-29

Unspecified vulnerability in McAfee Network Data Loss Prevention (NDLP) before 9.2.2 allows local users to read arbitrary files via unknown vectors.

Vendor(s): N/A

Affected OS(s) / software(s): N/A

CVE-2014-8520 N/A

2014-10-29 2014-10-29

McAfee Network Data Loss Prevention (NDLP) before 9.3 allows remote attackers to obtain sensitive information via vectors related to open network ports.

Vendor(s): N/A

Affected OS(s) / software(s): N/A